6 matches found
CVE-2026-31281
CVE-2026-31281 β Totara LMS HTML Injection : Totara LMS v19.1.5 and earlier is described as vulnerable to HTML injection via a message sent to users, enabling the attacker to execute HTML/JS in the victimβs browser and potentially causing session hijacking and command execution on the userβs devi...
EUVD-2020-26728
Malware in sbrugna...
Poddycast θ·¨η«θζ¬ζΌζ΄
Poddycast is an electronically produced podcasting application. A cross-site scripting vulnerability exists in Poddycast that stems from the product not clearing HTML special characters from podcast messages. An attacker could cause client-side code execution via this vulnerability. The following...
Apple watchOS Messages has an unspecified vulnerability
Apple watchOS is an operating system for smartwatches from Apple Inc. Messages is an application component for sending text, photos and videos. A security vulnerability exists in the Messages component in Apple watchOS versions prior to 5.3. After being removed from an iMessage call, an attacker...
Apple iOS and watchOS Messages Denial of Service Vulnerability
Apple iOS and watchOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices; Apple watchOS is an operating system for smartwatches. messages is one of the components of the application used to send text, photos, and videos. A denial of service vulnerability...
Apple iOS Messages Message Disclosure Vulnerability
Apple iOS, OS X, and watchOS are all products of Apple Inc. Apple iOS is an operating system developed for mobile devices; watchOS is a smartwatch operating system; and Apple OS X is an Apple operating system. An information disclosure vulnerability exists in the implementation of Messages in iOS...